CVE-2017-9868

Опубликовано: 25 июн. 2017

Источник: ubuntu

Приоритет: medium

CVSS2: 2.1

CVSS3: 5.5

Описание

In Mosquitto through 1.4.12, mosquitto.db (aka the persistence file) is world readable, which allows local users to obtain sensitive MQTT topic information.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	1.4.15-1
devel	not-affected	1.4.15-1
esm-apps/bionic	not-affected	1.4.15-1
esm-apps/xenial	released	1.4.8-1ubuntu0.16.04.2
esm-infra-legacy/trusty	released	0.15-2ubuntu1.2
precise/esm	DNE
trusty	released	0.15-2ubuntu1.2
trusty/esm	released	0.15-2ubuntu1.2
upstream	released	1.4.14-1

Показывать по

Ссылки на источники

2.1 Low

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2017-9868

CVSS3: 5.5

nvd

больше 8 лет назад

In Mosquitto through 1.4.12, mosquitto.db (aka the persistence file) is world readable, which allows local users to obtain sensitive MQTT topic information.

CVE-2017-9868

CVSS3: 5.5

debian

больше 8 лет назад

In Mosquitto through 1.4.12, mosquitto.db (aka the persistence file) i ...

GHSA-m438-p9g2-x57w

CVSS3: 5.5

github

больше 3 лет назад

In Mosquitto through 1.4.12, mosquitto.db (aka the persistence file) is world readable, which allows local users to obtain sensitive MQTT topic information.

2.1 Low

CVSS2

5.5 Medium

CVSS3

CVE-2017-9868

Описание

Пакет mosquitto

Ссылки на источники

Связанные уязвимости